SecurityRuleSummary¶

class oci.network_firewall.models.SecurityRuleSummary(**kwargs)¶

Bases: object

Summary for the Security Rule used in the firewall policy rules. Security Rules determine whether to block or allow a session based on traffic attributes, such as the source and destination IP address, protocol/port, and the HTTP(S) target URL.

Attributes

`ACTION_ALLOW`	A constant which can be used with the action property of a SecurityRuleSummary.
`ACTION_DROP`	A constant which can be used with the action property of a SecurityRuleSummary.
`ACTION_INSPECT`	A constant which can be used with the action property of a SecurityRuleSummary.
`ACTION_REJECT`	A constant which can be used with the action property of a SecurityRuleSummary.
`INSPECTION_INTRUSION_DETECTION`	A constant which can be used with the inspection property of a SecurityRuleSummary.
`INSPECTION_INTRUSION_PREVENTION`	A constant which can be used with the inspection property of a SecurityRuleSummary.
`action`	[Required] Gets the action of this SecurityRuleSummary.
`inspection`	Gets the inspection of this SecurityRuleSummary.
`name`	[Required] Gets the name of this SecurityRuleSummary.
`parent_resource_id`	[Required] Gets the parent_resource_id of this SecurityRuleSummary.
`priority_order`	[Required] Gets the priority_order of this SecurityRuleSummary.

Methods

__init__(**kwargs) Initializes a new SecurityRuleSummary object with values from keyword arguments.

ACTION_ALLOW = 'ALLOW'¶: A constant which can be used with the action property of a SecurityRuleSummary. This constant has a value of “ALLOW”

ACTION_DROP = 'DROP'¶: A constant which can be used with the action property of a SecurityRuleSummary. This constant has a value of “DROP”

ACTION_INSPECT = 'INSPECT'¶: A constant which can be used with the action property of a SecurityRuleSummary. This constant has a value of “INSPECT”

ACTION_REJECT = 'REJECT'¶: A constant which can be used with the action property of a SecurityRuleSummary. This constant has a value of “REJECT”

INSPECTION_INTRUSION_DETECTION = 'INTRUSION_DETECTION'¶: A constant which can be used with the inspection property of a SecurityRuleSummary. This constant has a value of “INTRUSION_DETECTION”

INSPECTION_INTRUSION_PREVENTION = 'INTRUSION_PREVENTION'¶: A constant which can be used with the inspection property of a SecurityRuleSummary. This constant has a value of “INTRUSION_PREVENTION”

__init__(**kwargs)¶

Initializes a new SecurityRuleSummary object with values from keyword arguments. The following keyword arguments are supported (corresponding to the getters/setters of this class):

Parameters:

name (str) – The value to assign to the name property of this SecurityRuleSummary.
action (str) – The value to assign to the action property of this SecurityRuleSummary. Allowed values for this property are: “ALLOW”, “DROP”, “REJECT”, “INSPECT”, ‘UNKNOWN_ENUM_VALUE’. Any unrecognized values returned by a service will be mapped to ‘UNKNOWN_ENUM_VALUE’.
inspection (str) – The value to assign to the inspection property of this SecurityRuleSummary. Allowed values for this property are: “INTRUSION_DETECTION”, “INTRUSION_PREVENTION”, ‘UNKNOWN_ENUM_VALUE’. Any unrecognized values returned by a service will be mapped to ‘UNKNOWN_ENUM_VALUE’.
priority_order (int) – The value to assign to the priority_order property of this SecurityRuleSummary.
parent_resource_id (str) – The value to assign to the parent_resource_id property of this SecurityRuleSummary.

action¶

[Required] Gets the action of this SecurityRuleSummary. Types of Action on the Traffic flow.

ALLOW - Allows the traffic.

DROP - Silently drops the traffic, e.g. without sending a TCP reset.

REJECT - Rejects the traffic, sending a TCP reset to client and/or server as applicable.

INSPECT - Inspects traffic for vulnerability as specified in inspection, which may result in rejection.

Allowed values for this property are: “ALLOW”, “DROP”, “REJECT”, “INSPECT”, ‘UNKNOWN_ENUM_VALUE’. Any unrecognized values returned by a service will be mapped to ‘UNKNOWN_ENUM_VALUE’.

Returns:	The action of this SecurityRuleSummary.
Return type:	str

inspection¶

Gets the inspection of this SecurityRuleSummary. Type of inspection to affect the Traffic flow. This is only applicable if action is INSPECT.

INTRUSION_DETECTION - Intrusion Detection.

INTRUSION_PREVENTION - Intrusion Detection and Prevention. Traffic classified as potentially malicious will be rejected as described in type.

Allowed values for this property are: “INTRUSION_DETECTION”, “INTRUSION_PREVENTION”, ‘UNKNOWN_ENUM_VALUE’. Any unrecognized values returned by a service will be mapped to ‘UNKNOWN_ENUM_VALUE’.

Returns:	The inspection of this SecurityRuleSummary.
Return type:	str

name¶

[Required] Gets the name of this SecurityRuleSummary. Name for the Security rule, must be unique within the policy.

Returns:	The name of this SecurityRuleSummary.
Return type:	str

parent_resource_id¶

[Required] Gets the parent_resource_id of this SecurityRuleSummary. OCID of the network firewall policy this security rule belongs to.

Returns:	The parent_resource_id of this SecurityRuleSummary.
Return type:	str

priority_order¶

[Required] Gets the priority_order of this SecurityRuleSummary. The priority order in which this rule should be evaluated.

Returns:	The priority_order of this SecurityRuleSummary.
Return type:	int